Information Security

Security-Information Flow in the South African Public Sector

Abstract:

Information-security management programs are becoming increasingly important in enabling organisations to promote a high level of accountability and good governance. Organisations need accurate and relevant real-time information to make effective and efficient decisions pertaining to cyber threats and attacks. Based on a qualitative study, this article introduces and discusses the components of an information-security management program.

How Secure is Our Information Infrastructure?

Abstract:

Managers of critical information infrastructures need better tools for managing risk than the qualitative or compliance-based metrics commonly used today in critical infrastructure protection. This paper provides a performance-based metric that can be used to obtain a quantitative measure of the security of information infrastructures. 

Cyberspace Offense and Defense

Abstract:

As the newest domain of military operations, cyberspace presents new challenges and learning opportunities. The fundamental military concepts operations apply, but often in ways different from the other domains. This paper examines military concepts of offense and defense in the cyberspace domain. Much previous work attempts to map military concepts into cyberspace while avoiding the technological reality of the domain. This paper applies foundational principles from the established field of information security to make a more technologically grounded examination of cyberspace offense and defense, their relationship, and how their nature here differs from the other operational domains.

Tactics of Attack and Defense in Physical and Digital Environments: An Asymmetric Warfare Approach

Abstract

Asymmetric warfare is frequently described as a conflict between two parties where the ‘weaker’ party aims to offset its comparatively fewer resources by making use of particular tactical advantages. This paper develops a concept model that captures the leverage available to the ‘weaker’ party over the ‘stronger’ party simply because the former is attacking rather than defending.

A Process for the Identification of Security Risks from Critical Infrastructure Interdependencies

Abstract

Traditional security risk assessment takes a broad asset-based view of organizations. The risk identification process therefore focuses on well-known threats and vulnerabilities to static and discrete assets that fall within the scope of organizational boundaries under investigation. It does not offer a methodology or framework that systematically deals with risks that arise from the complex interdependencies1 among the critical infrastructures2. To support this proposition, this paper conducts a systematic analysis of the security risks resulting from logical, cyber, geographical and physical interdependencies between telecommunications and power infrastructures.

Inside and Out? The information Security Threat from Insiders

ABSTRACT

A ‘broad’ definition of insider is proposed: someone who has skills, knowledge, resources or access, considered privileged to, or under the control of, an organization. This extends the traditional ‘narrow’ definition of insider as someone who just has privileged access to IT systems. This broad definition allows a detailed analysis of the strategy and modus operandi of insiders using threat susceptibility factors such as catalysts, inhibitors and amplifiers. This analysis is then used as a basis for a review of insider threat counter-measures.

In Pursuit of a Standard Penetration Testing Methodology

ABSTRACT

Penetration testing has gained great momentum commercially, but there is limited methodological research in the literature.  A methodology is important for penetration testing if it is to maintain a degree of separation between the security profession and wanton attacks.  The methodological approaches to security posture testing are explored; using tactics adopted from crackers themselves; and, look particularly at a small body of literature. The surveyed methodologies are compared and contrasted, extrapolating the major trends and features into a hybrid, and conclude with directions for future research. In general, it was found that the methodologies to converge on reconnaissance, attack and escape.

Security Dimension of IT in Developing Countries: Risks and Challenges

ABSTRACT

In the present paper we discuss security aspects of the Information and Communication Technology (ICT) from developing countries perspective. Specifically, we present and discuss our study done in Tanzania. We start by discussing the extents of computers and computer systems use and network connectivity, followed by level of IT security awareness and the country policies in relation to ICT implementations. Then we highlight various risks and challenges within the context and finally, we discuss some of the remedial steps and actions that are being taken to deal with the situations.

Design and Implementation of an Information Security Laboratory

ABSTRACT

It has been recognized for some time now that education in information security is better served by a laboratory component that reinforces principle and theoretical analysis learnt in the class room with a follow-up hands-on component performed in an appropriate laboratory. In this paper we present the design of a highly reconfigurable laboratory for information security education. The design has been implemented successfully in ISIS - The Information Systems and Internet Security Laboratory at Polytechnic University. We also describe the rationale for our design and give examples of a few typical assignments that the laboratory facilitates.

The Role of Dynamic Security Policy in Military Scenarios

ABSTRACT

The military is moving towards Network Enabled Capability (NEC) where the emphasis is on resource sharing within national contingents and on a coalition basis, facilitated by the Network.  Future capability is predicated on the core attribute of agility.  NEC is expected to enable the dynamic formation of communities of interest and the rapid reorganisation of resources as required by military commanders.  Through the application of a suitable security policy framework to a small-scale case study, this paper tests the assertion that the ability to express, verify and implement flexible security policy is essential to achieve the agility required.

Use of a Secure Portable Application Device as a Component of Network Centric Operations

ABSTRACT

Network Centric Operations (NCO) allows an organisation to structure its people, processes and technology to gather and process information to ensure the right information gets to the right person at the right time in and the right form. NCO enables an organisation to achieve information superiority, and hence gain a competitive advantage.

Does Traditional Security Risk Assessment have a Future in Information Security?

ABSTRACT

The current information security standards still advocate the use of risk assessment in the prioritisation of security investments. However, prior research on the use of risk assessment methodologies in organisational security has shown that the use of the traditional monolithic risk assessment process described in the current risk management standard is simply not practical at the organisational level. This paper first examines the problems in performing a systematic risk assessment and then discusses the limitations of a traditional risk assessment. To address these limitations, this paper proposes splitting up the current monolithic risk assessment process. The result is an information security assessment framework that puts greater emphasis on situational awareness and allows for better decision making on the prioritization of security investments.

Strategic Communication for Cyber-security Leadership

ABSTRACT

The purpose of this paper is to form a preliminary hypothesis about how to identify characteristics that a leader needs to focus on when aiming at cyber-security leadership. The paper studies the key concepts and terms of cyber security and presents the physical world and the cyber world framework. The paper refers to a system model of a society and uses that model to analyze the results of two limited media surveys about cyber-related newspaper articles.  The media surveys indicate a strong need to organize the cyber world.

Protecting Sensitive Law Enforcement Agencies' Data: Data Security in the Cloud

ABSTRACT

The possibility of accessing information related to an investigation at any time and from any place is getting increasingly important for security forces, especially the police. Thus, needs arise to store this information in a cloud, to protect these data from unauthorized access, and to allow access to only authorized persons—often only within a limited time period. The conceptual paper at hand describes a technique to store data in a cloud in a secure encrypted manner and grant the access rights adapted to current requirements.

Security Requirements for Cloud Computing in Crisis Management

ABSTRACT

Cloud computing provides a convenient tool for crisis response teams to collaborate and share information no matter where the team members are located. Depending on the type of crisis, there may be differing security requirements for the information, and this can impact how the cloud computing is managed or whether additional security measures should be in place. This paper discusses the possible use of cloud computing as a communication tool in crisis situations, information security requirements for various types of crises, and the security requirements of cloud computing in this role.

Developing a Strategic Framework for Managing Security in SCADA Systems

ABSTRACT

The Internet, originally an open distributed system, has gradually evolved into a complex network as a platform for global connectivity. Today, the Internet hosts complex electronic and engineering systems (such as Supervisory Control and Data Acquisition – SCADA – systems) deployed to manage critical infrastructures. The Internet has become a platform for transporting high volumes of critical information worldwide. Securing sensitive information and safeguarding operations of critical infrastructure management systems has become critical. SCADA systems are deployed, complex operations that play a vital role in managing critical resources. This paper elaborates on the need for a holistic approach for managing the security of complex infrastructures and recommends a strategic model for security management of SCADA systems.

Journal of Information Warfare

The definitive publication for the best and latest research and analysis on information warfare, information operations, and cyber crime. Available in traditional hard copy or online.

Keywords

Quill Logo

The definitive publication for the best and latest research and analysis on information warfare, information operations, and cyber crime. Available in traditional hard copy or online.

SUBSCRIBE NOW

Get in touch

  • Journal of Information Warfare
    114 Ballard Street
    Yorktown, VA
    23690
  • 757.234.6664
  • jiw@gbpts.com